This release still contains a regression in the "no ip address ..." command, at least on Linux. See bug #486, which contains a workaround patch.

This release should be considered a 1.0.0 release candidate. Please test this release as widely as possible.

The quick summary of user-visible changes is below, see the full changelog for more details.

bgpd:
    fix md5 set on listen sockets
    missing pieces from listener patch
    Workaround for invalid MBGP next hop
    Allow inbound connections to non-default view
    fd leak in bgpd
    Delete AS_CONFED_SEQUENCE when prepending an AS_SEQUENCE type segment
    Implement BGP confederation error handling (RFC5065, Par. 5)
    start listener on first instance
    peer action table static/const
    Restore ability of 'neighbor ... update-source' to take interface name

ospfd:
    Make sure priority is respected.
    Tighten up the connected check for redistribution
    fix performance problem with redistribute delete
    Make sure route table is recalculated.
    Make "Packet ... received on wrong link" conditional on debug
    Change struct ospf_path *oi to ifindex.
    Discriminate better when selecting links between vertices in SPF
    Make ospf_if_lookup_recv_if() find the right unnumbered i/f
    export ospf_if_table_lookup() and use it in ospf_network_run_interface()

ospf6d:
    bug #529, fix endianness problem in earlier commit

ripd:
    set IP TOS for control socket

zebra:
    do not touch socket before pidfile locking

doc:
    zebra.8 via Christian Hammers (#531)

This release contains a regression fix for ospf6d, various small fixes and some hopefully very significant bgpd stability fixes.

This release should be considered a 1.0.0 release candidate. Please test this release as widely as possible.

A quick summary of other changes is below, see the full changelog for more details.

lib:
    Fix IPv6 normalisation
    Allow for large-file support, e.g. for log files >2GB

zebra:
    Silence noisy process_subq
    RFC 4191 Default Router Preference support for router advertisements
    linux policy routing support with ipv6
    Static route does not reach kernel.

bgpd:
    Fix nexthop reachability check on confederations
    fix typo made by paul in previous commit
    Avoid zombie accepted peer entries
    Small buffer overrun in bgp_clear_node_queue_init
    Stability fixes including bugs 397, 492
    Fix compiler warnings related to MD5
    Bug #533: Fix crash with copy/pasted commands, inc 'no bgp ...'
    Log a debug/update warning if filters are configured but don't exist
    Add 'show ip bgp view WORD neighbors IP (advertised|received)-routes'
    review 32-bit AS-path hotfix for 0.99.12
    Fix "show ip bgp dampened-paths" garbage output.
    Fixes to RFC2385/MD5 BGP

ospfd:
    Do not use stale Network/Router LSAs
    compare ifIndex too when matching paths
    external LSA route_unlock_node() fixes
    Fix a few LSA performance "bugs"
    discount IP header size from a new LSA pkt
    cancel OSPF timer hack in nsm_change_state

ospf6d:
    Fix regression in monotonic time patch - LSA max-aging broke

vtysh:
    Save vtysh history to a file
    Fix vtysh based "write term" output.

doc:
    Add "--disable-doc" to configure

This release is contains a number of small fixes, for potentially irritating issues, as well as small enhancements to vtysh and support for linking to PCRE (a much faster regex library).

A quick summary of other changes is below, see the full changelog for more details.

build:

    [configure] fix check for GNU awk/gawk to abort ./configure if missing
    [configure] add configure support for PCRE Posix library
    [configure] Detect support for monotonic clock

zebra:

    [zebra] Force rib_update when connected route deleted
    [zebra] Only announce connected routes if link is detected
    [zebra] MTU is unsigned
    [zebra] remove incorrect debug message
    [zebra] Cleanup meta-queue code
    [zebra] netlink interface minor cleanup
    [zebra] Fix vyatta bug 2814: Add "show ip route summary" command.

bgpd:

    [bgpd] Fix 'update-source' command: It doesn't accept interface names
    [bgpd] reference count the BGP instance
    [bgpd] Add support for the old Linux 2.4, TCP_MD5_AUTH RFC2385 patch
    [bgpd] Fixed as-path prepend/exclude ASN handling
    [bgp] Fix crash on SIGHUP, deref of freed workqueues
    [bgpd] 64-bit bugfix in community_del_val

ospfd:

    [ospfd] Fix OSPF route refcount leak
    [ospfd] fix vty ospfd no ospf abr-type standard

ospf6d:

    Convert ospf6d over to quagga_gettime() wrappers.
    [ospf6d] Remove 'no router' from OSPF6_NODE
    [ospf6d] Fix ospf6d crash if removing interface with no area
    [ospf6d] Fix ospf6d crash in show border routers
    [ospf6] Add no router ospf6
    [ospf6d] Fix ospf6d crash if range defined twice

ripd:

    [ripd] Ignore non-running interfaces in rip status
    [ripd] Fix metrix in call to rip_zebra_ipv4_delete

vtysh:

    [vtysh] Add a --noerror option
    [vtysh] Return non-zero exit code on error.
    [vtysh] Make vtysh more useable for scripting
    [vtysh] Force line buffered mode.

misc:

    [daemons/cleanup] Remove disabled log_mode argument support.
    [lib] Put symbolic backtrace on system log
    [lib] sockopt_tcp_signature: sin6 requires HAVE_IPV6
    [smux] 64-bit fix for lib/smux.h SNMP_INTEGER() macro
                                                                                                                                        

This release fixes an urgent bug in bgpd where it could hit an assert if it received a long AS_PATH with a 4-byte ASN.

A quick summary of other changes is below, see the full changelog for more details.

bgpd:
    Fix bgp ipv4/ipv6 accept handling
    [bgpd] AS4 bugfix by Chris Caputo
    [bgpd] Add 'show bgp views' command
    [bgpd] Allow accepted peers to progress even if realpeer is in Connect

ospfd:
    [lib] Move type cast in Fletcher checksum
    [lib] Switch Fletcher checksum back to old ospfd version
    Justified OSPF cost function names and added support for:
     ospf cost <1-65535> A.B.C.D
     no ospf cost <1-65535>

library:
    [lib] Fix timer precision.
    [lib] fix missing sockunion_normalise_mapped

vtysh:
    [vtysh] Add commands from zebra_routemap.c to vtysh

misc:
    [build] tools/multiple-bgpd.sh should be in 'make dist'

Thanks to everyone who helped by reporting bugs, contributing and testing fixes.

Release notes

Stable release candidate

Most regressions in 0.99 over 0.98 are now believed to be fixed. This release should be considered a release-candidate for a new stable series, and we urge any remaining users of 0.98 to test this release and report any bugs. A blocker meta-bug exists to track critical regressions.

bgpd: Preliminary UI and Linux-IPv4 support for TCP-MD5 merged

Initial support for TCP-MD5 has been merged. This adds the neighbor ... password command, and some support for setting TCP-MD5 on pure-IPv4 connections on Linux. On Linux systems with IPv6 available, passing the -l 0.0.0.0 argument to bgpd may allow TCP-MD5 support to work. It's not possible at this point to have IPv6 sessions and also use TCP-MD5 on IPv4 sessions. This will hopefully be rectified in a future release.

bgpd: Fix double-free crash in bgp_table_finish, seen with rs-client

Though diagnosed with rs-clients, this fix very likely addresses a number of crashes reported to Quagga bugzilla.

zebra: ignore dead routes in RIB update

This fix may address some issues reported with routes not being consistent between the zebra RIB and the kernel FIB, remaining after the fixes in last release.

Solaris: Sync SMF bits with OpenSolaris SFW

The Quagga packaging support for Solaris has been updated to synchronise with OpenSolaris SFW. Of particular note is that SMF schema has been updated to match the Sun PSARC approved schema, which is supported by the OpenSolaris routeadm utility. User's may need to familiarise themselves with the changed FMRIs, and may need to update any administrative scripts.

A short-form list of more notable, code related changes:

bgpd:
 [bgpd] Document the FSM dummy-peer race that sometimes afflicts session setup
 [bgpd] Fix definition of an rsclient command
 [bgpd] Fix double-free crash in bgp_table_finish, seen with rs-client
 [bgpd] Fix triggerable crash when compiled with --disable-bgp-announce
 [bgpd] TCP-MD5: password vty configuration and initial Linux support

build:
 [build] --enable...user/group didn't match help text
 [build] Fix --enable-pie so it can actually be disabled
 [build] Linux netlink doesn't need IF_PROC
 [build] Test for GNU-style PIE support in toolchain and enable
 Make --enable-snmp cross compile and make libcrypto optional with --without-crypto

isisd:
 [isisd:DLPI] Try open vanity-named DLPI dev before style 1,2
 [isisd] Fix packet filtering with DLPI
 [ospfd/isisd] Switch to lib/ Fletcher checksum, fixing bug in isisd

lib:
 [lib] Add fletcher checksum implementation
 [vty] Add support for a 'restricted mode' with anonymous vty connections
 [vty] Allow delete during password entry
 [vty] CMD_AS_RANGE accidently quoted and so not expanded in vty

ospfd:
 [ospfd] Default route needs to be refreshed after neighbour state change
 [ospfd] Fix SEGV during startup introduced in recent commit
 [ospfd] Move passive interface check
 [ospfd] Restructure opsf_if_update() and ospf_network_run()
 Fix SEGV in ip ospf neighbor all
 Ignore host routes to self.
 Set destination for PtP links to OSPF_ALLSPFROUTERS.

packaging:
 [solaris] Sync SMF bits with OpenSolaris SFW

tools:
 [tools/multiple-bgpd.sh] make it easier to use IPv6 peer addresses
 [tools/multiple-bgpd] setup IPv6 advertisments

vtysh:
 [vtysh] small fix to previous CMD_AS_RANGE patch, and add missing command

zebra:
 [zebra:linux] Filter out unwanted netlink messages by PID
 [zebra:linux] clean up blocking setting of netlink sockets
 [zebra:linux] netlink buffer size tweaking only needed on receive socket
 [zebra:linux] netlink: no need to change privs for receive
 [zebra:linux] netlink: quiet harmless errors
 [zebra:netlink] Set proto/scope on all route update messages
 [zebra] Make BSD link-state deal more gracefully with GIFMEDIA ioctl error
 [zebra] ignore dead routes in RIB update

Thanks to everyone who helped by reporting bugs, contributing and testing fixes.

Release notes

zebra: Races in the RIB could lead to routes not being installed to kernel FIB

bgpd: 4-Byte AS Number support

Quagga now supports 4-byte AS numbers.

bgpd: Low impact AS4 Attribute DoS (Mu Security)

This release fixes further potential DoS conditions in bgpd, again reported by Mu Security, where a bgpd could be made to crash if an UPDATE was sent with certain AS4 attributes. The possible crashes are either a NULL pointer dereference, or an assert, and so are not thougth to be exploitable.

As AS4 support is only being introduced in this release of Quagga, the impact is considered neglible. The exception is where pre-release Quagga software, with initial AS4 support, has been deployed. Such deployments are vulnerable to a DoS initiated by any remote participant in the BGP network.

NB: The CVS commit message mistakenly says this affects only configured peers. The above advice takes precedence.

bgpd: Sundry regression fixes

Sessions would be incorrectly reset if a partial AS-Pathlimit attribute was received. All users of 0.99.9 bgpd, in which AS-Pathlimit support was introduced, that receive public routes will need to upgrade to 0.99.10 to avoid this issue.

Advertisement of Multi-Protocol prefixes (i.e. non-IPv4) had been broken in the 0.99.9 release.

BSD: Interface link-state now supported

Solaris: Support added for Solaris 10U5 IP instance privileges

A short-form list of code related changes:

zebra:

    [zebra] note the meta-queue in NEWS
    [zebra] initial edition of meta-queue for RIB updates processing (#431)
    [zebra] fix bug#326 by rib_lookup_and_pushup()
    [zebra/linux] Use BPF to filter out responses, to try avoid netlink
    overruns
    [zebra] fixed bug #418 (changing address on an existing interface
    doesn't cause existing static routes to be revalidated)
    [zebra] fix the bug reported by Milan Kocian (IPv6 route handling
    was broken by the RIB debug changeset).
    [zebra] rib_process() speedup for multi-nexthop route nodes
    [zebra] Minor bugfix: IPv6 prefixes were logged incorrectly in RIB
    debugging calls. Fixed.
    [zebra] sayonara old_pid!
    [zebra] fixed bug #402: now the second zebra process doesn't
    destroy routes of the first one before dying
    [zebra] we are not going to receive routing messages originated by
    old_pid,
      because rib_sweep_route() is called after damon() now. This will allow
      to drop old_pid completely soon.
    [zebra] Switch from LOOKUP() to lookup() for rtm_type (see bug #401 for details).
    [zebra] * rt_socket.c: (kernel_rtm_ipv4) prefix_buf could be passed
            to zlog_err() uninitialized with debug disabled. Fixed.

lib:

    [lib] trivial: add const qualifier to stream_put/write
    [lib] Fix the struct message LOOKUP function to be more robust
    [lib/linklist] Enforce "nodes must have data" invariant more
    rigorously
    [lib] add mising UL qualifier to numerical constant
    [lib] pidfiles are now always created with 0644 perms instead if
    LOGFILE_MASK (0600)
    [privs/Solaris] Quagga should work in zones with IP instances
    [snmp-smux] Fix problems if 'smux peer ...' is issued multiple
    times

bgpd:

    [bgpd] minor changes to bgp_mp_reach_parse
    [bgpd] bug #419: partial aspath-limit incorrectly causes session reset
    [bgpd] fix the set statement name
    [bgpd] Added new route-map set statement: "as-path ignore"
    [bgpd] remove unnecessary 0 entries from struct message's
    [bgpd] fix crash on startup if compiled IPv4-only
    [bgpd] Fix number of DoS security issues, restricted to configured
    peers.
    [bgpd] fixed no_set_aspath_prepend() to correctly match existing
    "set" statement
    [bgpd] Fix typo in previous commit to bgp_main.c
    [bgpd] small fix for crash if 'listenon' argument is not given
    [bgpd] Add 'listenon' argument
    [bgpd] Merge AS4 support
    [bgpd] Fix typo, which prevented advertisement of MP (non-IPv4)
    prefixes

ospfd:

    [ospfd] fix missing arg to zlog_warn()
    [ospfd] fix minor regression in OSPF sending buffer adjustment
logic

ripd:

    [ripd] Fix mistaken empty string test
    [ripd] remove unnecessary 0 entries from struct message's

isisd:

    [isisd] Bug #437: fix ssert caused by bad list management

ospf6d:

    [ospf6d] Fix removal of defunct ASBR routes

general:

    [c++] remove/rename some names in headers that clash with C++ reserved words
    [daemons] Sanity check port number arguments before use
    [solaris] add missing makefile.am dependency
    [link-detect] Improve BSD support.
    [link-detect] Try to get BSD link-detect to work properly.
    [link-detect] Static interface routes should behave properly with
    link-detect.
    [tests] BGP MP_(UN)REACH_NLRI unit tests
    [tests:bgp] Further tests for 0 sized as_path segments
    [tools] multiple-bgpd.sh: make paths more configurable

• Live routes, for our 'global' view
• any other "junk" routes (private, generated, etc.), for our 'test' view
• Representative BGP implementations, from common vendors
• Unusual BGP implementations, e.g. quite old or quite new versions, or rare speakers
• As many routes, with as many differing attributes, as possible

I.e. if you've got a BGP speaker on the internet, and it is likely to remain on the internet, we'd like a session with it!

Sign up today!

Thanks to everyone who helped by reporting bugs and testing fixes.

Release notes

bgpd: Low impact DoS (Mu Security)

This release fixes two potential DoS conditions in bgpd, reported by Mu Security, where a bgpd could be crashed if a peer sent a malformed OPEN message or a malformed COMMUNITY attribute. Only configured peers can do this, hence we consider these issues to be very low impact.

bgpd: crash with outbound route-maps

This release fixes a serious regression in bgpd in Quagga 0.99.8, where use of outbound route-maps would cause a crash.

bgpd: severe performance problems with regexes

Operators should be aware that allowing untrusted access to the bgpd vty are vulnerable to such untrusted users running regex commands that may cause bgpd to block for many minutes.

To try alleviate this, bgpd now passes the 'REG_NOSUB' flag to regcomp(). This may help good regex implementations to avoid doing a lot of work when users specify substitutions (which we will never use). Unfortunately, this doesn't appear to have much of an effect on the platforms I have tested (Solaris libc and GNU libc).

The 'PCRE' regex implementation however appears to be better behaved, and does not introduce huge slow-downs when regexes with substitutions are applied. Operators who continue to offer untrusted vty access may wish to preload the 'libpcreposix' library (e.g. using LD_PRELOAD). Be aware however that PCRE is not fully compatible with POSIX extended regexes, and this workaround may adversely impact existing configurations.

bgpd: AS-Pathlimit TTL attribute support added

This attribute allows for routes to be announced with a limited scope, specified in terms of numbers of AS-hopcount. See the TeXinfo documentation for further details.

isisd: Now supports Solaris

A short-form list of code related changes:

bgpd:
- [bgpd] low-impact DoS: crash on malformed community with debug set
- [bgpd] bug #398 Bogus free on out route-map, and assert() with rsclients
- [bgpd] Add support for AS_PATHLIMIT / draft-ietf-idr-as-pathlimit
- [bgpd] cleanup, compact and consolidate capability parsing code
- [bgpd] Dont schedule dumps multiple times for same command
- [bgpd] Pass NOSUB to regexec

ospfd:
- [ospfd] Bug #331, NSSA ASBR regression - failure to set E-bit in NSSA
areas
- Bug #362 is fixed now.
- [ospfd] Fix bad SPF calculation on some topologies - incorrect sorting

zebra:
- + fixed bug #400: adjusted rtread_sysctl.c:route_read()
- Looks like bug #320 is finally fixed now.
- Fixed ioctl_solaris.c:if_get_mtu() for IPv6'less operation
- Fixed bug #394 "RTF_DONE is ignored in rtm_read()"
- Merged own patch for bug #390 (rewrite
zebra/zebra_rib.c:nexthop_active_update())
- Use the proper field length for the peer's address
(netlink_interface_addr)
- Bugzilla #384.

isisd:
- [isisd] Add support for Solaris DLPI

A summary of changes follows:

• zebra:
  • rib loop check for RIB_ENTRY_REMOVED checks wrong var
  • [PtP] Fix BSD problems with PtP interfaces: must treat RTA_BRD as peer addre
  • Add zebra_routemap.c
  • Routemap support on received routes, with 'set src' command (linux)
• lib
  • Add comments regarding setsockopt_multicast_ipv4 arguments.
• build:
  • configure needs to check for struct icmphdr for IRDP
  • [linux] Fix strange compilation problem by explicitly including <linux/types
  • [zebra] Trivial patches so we can compile when IPv6 is not enabled
  • [autoconf] Fix missing space character in previous commit
  • [autoconf] GNU_SOURCE can be defined twice, through AC_FUNC_STRNLEN
  • [autoconf] add back check for inet_aton
  • [autoconf] bugs 162,303,178: Fix 'present but can not be compiled' warnings
  • Improve portability by invoking gcc with -std=gnu99 instead of -std=c99
• ospfd
  • Fix address qualified 'ip ospf auth' commands
  • Bug #330 regression: Fix ospf_spf_add_parent assert
  • network command now behaves more logically when a peer prefix is defined
• vtysh
  • bug #371: vtysh forgets to print 'end' for write-terminal
• bgpd
  • bug #370, default-originate was broken by a silly thinko
  • Trim memory usage of BGP routes
• ospf6d:
  • Fix silly bug: muse use strcmp to compare strings

• bgpd
  • Minor performance improvement patch
  • bug #352: IPv6/Multicast address-family config not written out
  • V. quick route flap gets mistaken for duplicate, route is then ignored
  • Bug #354: Take care to keep reads of MP_(UN)REACH_NLRI in bounds
  • Peer delete can race with reconfig leading to crash
• zebra
  • For solaris IPv6 PtP interfaces, try to support prefixlen != 128
  • IRDP should ignore non-IPv4 addresses
  • Bug #351: Don't redistribute routes to ipv4 link-local prefixes
  • Only suppress adding a connected route to the kernel if it is
  • Fix interface metric bug on BSD
  • Retain configured IPv4 address upon removal by kernel
  • MTU change should propogate to zserv client on BSD/Solaris
• ospfd
  • Fix bug: should exit immediately on SIGTERM if OSPF not actually running
  • Return SNMP standard neighbor state values, not quagga internal ones
  • Fix bug in 'passive-interface default' behavior
  • Bug #330: SPF must consider that nexthop-calc may fail
  • Fix regression in SPF introduced by bug#330 fixes
  • Bug #330 regression: failure to calculate routes through networks
• ospf6d
  • Bug 322: ospf6d show ipv6 neighbour showing wrong times
  • Fix string comparison bug in ospf6_lsa_handler_name.
• ripd
  • Fix "show ip rip status" display of time until next update
  • Fix the display of route timeout in "show ip rip".
• ripngd
  • Fix the display of some timers.
• general
  • Better comment explaining that GNU awk is really required.
  • de-support NetBSD 1.6, and note that FreeBSD 4 is on thin ice.
  • [PtP over ethernet] New peer flag allows much more addressing flexibility
  • [logging] Add new "log timestamp precision" command for subsecond timestamps